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Preface 
About Qualys 


Preface 


Using the Qualys API, third parties can integrate their own applications with Qualys cloud 
security and compliance solutions using an extensible XML interface. 


About Qualys 


Qualys, Inc. (NASDAQ: QLYS) is a pioneer and leading provider of cloud-based security and 
compliance solutions. The Qualys Cloud Platform and its integrated apps help businesses 
simplify security operations and lower the cost of compliance by delivering critical 
security intelligence on demand and automating the full spectrum of auditing, 
compliance and protection for IT systems and web applications. 


Founded in 1999, Qualys has established strategic partnerships with leading managed 
service providers and consulting organizations including Accenture, BT, Cognizant 
Technology Solutions, Deutsche Telekom, Fujitsu, HCL, HP Enterprise, IBM, Infosys, NTT, 
Optiv, SecureWorks, Tata Communications, Verizon and Wipro. The company is also a 
founding member of the Cloud Security Alliance (CSA). For more information, please visit 
www.qualys.com. 


Qualys Support 


Qualys is committed to providing you with the most thorough support. Through online 
documentation, telephone help, and direct email support, Qualys ensures that your 
questions will be answered in the fastest time possible. We support you 7 days a week, 
24 hours a day. Access support information at www.qualys.com/support/. 
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Welcome 


Welcome to the Qualys Subscription Info API. 


Get Started 


Qualys API Server URL- We'll give you the basics about making API requests. The base URL 
depends on the platform where your Qualys account is located. 


Authentication- We'll tell you about the method used for authentication. API requests 
must authenticate using Qualys credentials. 


Using Curl - Get tips on using the Curl command-line tool to make API requests. Every curl 
request must have -u parameter with a Qualys login and password. Keep in mind this API 
does not support JSON calls at this time. 


Get API Notifications 


Subscribe to our API Notifications RSS Feeds for announcements and latest news. 


From our Community 
Join our Community 


API Notifications RSS Feeds 


Qualys API Server URL 


The Qualys API URL you should use for API requests depends on the Qualys platform 
where your account is located. 


Click here to identify your Qualys platform and get the API URL 


This documentation uses the API server URL for Qualys US Platform 1 
(https://qualysapi.qualys.com) in sample API requests. If you're on another platform, 
please replace this URL with the appropriate server URL for your account. 


Welcome 
Authentication 


Still have questions? You can easily find the API server URL for your account. Just log in to 
your Qualys account and go to Help > About. You'll see this information under Security 
Operations Center (SOC). 


About LaunchHelp [7 x 


Identified Services 
Qualys Web Service 


Identified OS Application Version 8.9.0.2-2 
Online Help Version: 8.9.29-1 
Additional References SCAP Module Version: 1.2 
Qualys External Scanners 
Security Operations Center (SOC): 64.39.96.0/20 (64.39.96.1-64.39.111.254) 
Scanner Version: 9.0.29-1 
Vulnerability Signature Version: 2.3.492-2 
Scanner Services 3.0.12-1 
Qualys Scanner Appliances 
Security Operations Center (SOC): - qualysguard.qualys.com:443 
| "qualysapiqualys.com:443 — 
- dist01.sjdc01.qualys.com:443 
- nochost.sjdc01.qualys.com:443 
- scanservice1.qualys.com:443 
- all in 64.39.96.0/20 


Authentication 


The application must authenticate using Qualys account credentials (user name and 
password) as part of the HTTP request. The credentials are transmitted using the "Basic 
Authentication Scheme" over HTTPS. 


For more information, see the "Basic Authentication Scheme” section of RFC #2617: 
http://www.faqs.org/rfcs/rfc2617.html 


The exact method of implementing authentication will vary according to which 
programming language is used. 


Example 
Basic authentication - recommended option: 


curl -u "USERNAME: PASSWORD" 
"https://qualysapi.qualys.com/api/2.0/fo/subscription/index.php" 


where qualysapi.qualys.com is the base URL to the Qualys API server where your account 
is located. 


Welcome 
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Using Curl 


Curlis a multi-platform command-line tool used to transfer data using multiple protocols. 
This tool is supported on many systems, including Windows, Unix, Linux and Mac. In this 
document Curl is used in the examples to build Qualys API requests using the HTTP over 
SSL (https) protocol, which i s required. 


Want to learn more? Visit http://curl/haxx/se 


The following Curl options are used according to different situations: 


Option Description 

-u "LOGIN:PASSWORD" This option is used for basic authentication. 

-X "POST" The POST method is required for some requests. 

-H "content-type" This option is used to provide a custom HTTP request 


header parameter for content type, to specify the MIME 
type of the curl's payload. 


--data-binary This option is used to specify the POST data. 


The sample below shows a typical Curl request using options mentioned above and how 
they interact with each other. 


curl -H "content-type: text/xml" -X "POST" --data-binary @- 
"https://example.com" « file.xml 


The option -X "POST" tells Curl to execute the request using the HTTP POST method. The 
option “--data-binary Q-" tells Curl to read the POST data from its standard input (stdin). 
The string < file.xml" is interpreted by the shell to redirect the content of the file to the 
stdin of the command. The option -H “content-type: text/xml” tells Curl the POST data in 
"file.xml" is XML in text format. 


JSON calls not supported 
The Subscription Info API does not support JSON requests and responses at this time. 
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Export Subscription Configurations 


Subscription Configurations 


Use these API functions to export/import subscription configurations. 


Note - This API is intended for a limited set of customers, including customers with 
multiple subscriptions on shared or PCP platforms. For more information, contact Qualys 
Support or your Qualys Technical Account Manager. 


Export Subscription Configurations 
Import Subscription Configurations 


Subscription INFO Keys 


Export Subscription Configurations 


Export all (or some) configurations for a particular subscription to an XML file, including 
settings for scans, reports, remediation, users and more. The subscription is based on the 
subscription ID for the Manager user making the API request. 

URL: https://<baseurl>/api/2.0/fo/subscription/index.php 


Methods allowed: GET 


Permissions: Manager Only 


Input parameters 
Use these parameters when making your request. 


action=export 


export_type={value} (Optional) By default we'll include all setup 
configuration settings from all sections of the UI. Use 
this parameter to export settings from certain sections 
only. Possible values are: all (the default), scan, 
reports, remediation, users. Multiple values are 

comma separated. 


Example 
In this sample request all subscription settings will be exported. 


Request: 


curl -u "username:password" -H "X-Requested-With:curl" 
"https://qualysapi.qualys.com/api/2.0/fo/subscription/?action-expo 
rt" > export config.xml 


Response: 


<?xml version-"1.0" encoding="UTF-8" ?> 
<!DOCTYPE RECORD SYSTEM 


"https://qua 
_info.dtd"> 
<RECORD> 
<SUBSCRIPT 
<FO> 
<SCAN> 


Subscription Configurations 
Export Subscription Configurations 


lysapi.qualys.com/api/2.0/fo/subscription/subscription 


ION» 


<INFO key="global_storage"><! [CDATA[1] ]></INFO> 
XINFO key="agnt.track.accept"><! [CDATA[1]]></INFO> 


<INFO 


key="schedul 


<INFO 


key="schedul 


ing.prevent.overlapping.scans"><! [CDATA[1]]></INFO> 


ing.relaunch.finished.scans"><! [CDATA[1]]></INFO> 


<SCANNER TRUSTED CA> 
<INFO key="id"><! [CDATA[12151]]></INFO> 
<INFO key="subscription id"><! [CDATA[988978] ]></INFO> 
<INFO key="cert"><! [CDATA[]]></INFO> 
XINFO key="common_name"><! [CDATA[s2012r2-S2012R2DC- 


CA] ]></INFO> 


XINFO key-"valid from"><! [CDATA[2016-02-18 


00:50:44] ]»« 


/INFO» 


XINFO key-"valid to"»«![CDATA[2041-02-18 


01:00:43] ]»« 


/ INFO> 


<INFO 


key-"md5"»«! 


key-"shal"»« 
NFO» 


kjETMBEGCgmS 
MBMGCgmSJomT 


[CDATA [ 6cad6bf£15de8223d495c5e309caed61d] ] ></INFO> 


<INFO 


! [CDATA[1015ebf4f7e5b37b560ebe51ca813dd2cd743eed] ] »«/1 


XINFO key-"cert data"><! [CDATA[----- BEGIN CERTIFICATE--- 


MIIEATCCAumgAwIBAgIQVFyklRCwALRAMWTUpjVd6jANBgkqhkiG9wOBAQUFADCB 


JomT8ixkARkWA2NvbTEWMBOGCgmSJomT8ixkARkWBnFlYWx5czEV 
8ixkARkWBXJkbGFiMROWEgYKCZImiZPyLGOBGRYEbWxxYTEXMBUG 


----- END CERTIFICATE----- 


]]»«/INFO» 


XINFO key="id"><! [CDATA[12150]]></INFO> 

<INFO key="subscription id"><! [CDATA[988978] ]></INFO> 
<INFO key="cert"><! [CDATA[]]></INFO> 

<INFO key-"common name"»«![CDATA[MLQA] ] ></INFO> 

<INFO key-"valid from"><! [CDATA[2016-02-04 


22:47:44] ]>< 


/ INFO> 


XINFO key="valid_to"><! [CDATA[2021-02-03 


22:47:44] ] >< 


/ INFO> 


<INFO 


key="md5"><! 


[CDATA [38ea3125de31f16a52fd38d35cf9e02c] ] »«/INFO» 


<INFO 


key="shal">< 


! [CDATA[dc9ca85e40£cf524a3a25b9decf0b9e0d5abc07£]]»«/I 


NFO> 


<INFO 


MIIGdjCCBF6gAwIBAgIBADANBgkqhkiG9wOBAQQFADCBiD 
EzA 
A1UI 
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key-"cert data"»«![CDATA[----- BEGIN CERTIFICATE--- 


Lr] 


MAkKGA1UEBhMCVVMx 


RBgNVBAgTCkNhbGlmb3JuaWExFTATBgNVBACTDFJlZHdvb20gO210eTEPMAOG 
EChMGUXVhbHlzMQO0wCwYDVOOLEWwWRNTFFBMOOwCwYDVOODEwRNTFFBMRAWwHAYJ 


END CERTIFE 


]]»«/INFO» 


00: 


12: 


00: 


12: 


00: 


00: 


00: 


00: 


«/SCANN 


ICATE----- 


ER TRUSTED CA» 


<EXCLUD 


ED IPS» 


«INFO 
«INFO 
«INFO 
«INFO 
«INFO 
«INFO 


key="id"><! [CDATA[2105299] ]></INFO> 
key-"subscription id"><! [CDATA[988978] ]></INFO> 
key-"excluded history id"><! [CDATA[819470] ]></INFO> 
key="ip_ start"»«! [CDATA[-1979053548] ] »«/ INFO» 
key-"ip end"»«! [CDATA[-1979053548] ]></INFO> 
key-"network id"><! [CDATA[0]]></INFO> 


</EXCLU 


DED IPS» 


<EXCLUD 


<INFO 
<INFO 
<INFO 
<INFO 
00] ]»«/IN 
«INFO 
«INFO 
«INFO 
«INFO 
«INFO 
00] ]»«/IN 
«INFO 
«INFO 
«INFO 
«INFO 
«INFO 


«INFO 
«INFO 
«INFO 
«INFO 
«INFO 


«INFO 
«INFO 
«INFO 
«INFO 


ED IPS EXPIRATION» 

key="id"><! [CDATA[499297] ]></INFO> 
key="subscription id"><! [CDATA[988978] ]></INFO> 
key="network id"><! [CDATA[0]]></INFO> 
key="expiration date"»«![CDATA[2018-02-25 

FO> i 

key="ip_start"><! [CDATA[-2147483646] ] ></INFO> 
key="ip_end"><! [CDATA[-2147483646] ] ></INFO> 
key="notification_sent"><! [CDATA[0]]></INFO> 
key="created_by"><! [CDATA[1016452] ]></INFO> 
key="created on"><! [CDATA[2017-03-02 

FO> E 
key-"notify dg"><! [CDATA[1334754] ]></INFO> 
key="id"><! [CDATA[499298] ]></INFO> 
key-"subscription id"><! [CDATA[988978] ]></INFO> 
key="network id"><! [CDATA[0]]></INFO> 
key="expiration date"><! [CDATA[2018-02-25 


00] ]></INFO> 


key="ip_start"><! [CDATA[-1979056128] ] ></INFO> 
key="ip_end"><! [CDATA[-1979056128] ]></INFO> 
key-"notification sent"><! [CDATA[0]]></INFO> 
key="created_by"><! [CDATA[1016452] ]></INFO> 
key-"created on"»«![CDATA[2017-03-02 


00]]»«/INFO» 


key-"notify dg"»«![CDATA[1334754]]»«/INFO» 
key="id"><! [CDATA [499319] ] »«/ INFO» 
key-"subscription id"»«! [CDATA[988978] ]></INFO> 
key="network_id"><! [CDATA[0]]»«/INFO» 
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<INFO 
00:00:00] ]></IN 
<INFO 
<INFO 
<INFO 
<INFO 
<INFO 
05:01:25]]></IN 
<INFO 
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key-"expiration date"»«! [CDATA[2017-07-21 

FO» i 

key-"ip start"»«![CDATA[-1305333198]]»«/INFO» 
key="ip_end"><! [CDATA[-1305333198] ]></INFO> 
key-"notification sent"»«![CDATA[0]]»«/INFO-» 
key="created_by"><! [CDATA[1016452] ]></INFO> 
key="created on"><! [CDATA[2017-03-03 

FO> i 
key-"notify dg"><! [CDATA[1334754] ]></INFO> 


</EXCLU 


DED IPS EXPIRATION»? 


<EXCLUD 


I 


«INFO 
«INFO 
«INFO 
«INFO 
05:56:42] ]»«/IN 
«INFO 
«INFO 
«INFO 
«INFO 


iD HISTORY» 

key="id"><! [CDATA[819470] ]»«/INFO» 
key-"subscription id"><! [CDATA[988978] ]></INFO> 
key="user id"><! [CDATA[1016452] ]></INFO> 
key-"insertion date"><! [CDATA[2017-05-16 

FO> n 

key-"action"»«! [CDATA[1]]></INFO> 
key-"comments"»«! [CDATA [addd] ] »«/INFO» 
key="params"><! [CDATA[10.10.10.20]]></INFO> 
key-"network id"><! [CDATA[0]]></INFO> 


</EXCLU 


</SCAN> 
<REPORTS> 
<INFO k 

<INFO 
key="secrisk.ig 

<INFO 
key="scheduled. 


DED HISTORY» 


ey="cpe.support"><! [CDATA[1] ]></INFO> 


nore 0 risk hosts"><! [CDATA[1]]></INFO> 


<INFO 
key="scheduled. 


reporting.email.attachments"><! [CDATA[0]]></INFO> 


<BUSINE 
<INFO 
<INFO 
<INFO 
<INFO 
<INFO 
<INFO 
<INFO 


</BUSINI 


<BUSINE 
<INFO 
<INFO 
<INFO 
<INFO 
<INFO 
<INFO 


reporting.email.links"><! [CDATA[1]]></INFO> 
SS RISK» 
key-"subscription id"»«! [CDATA[988978] ]></INFO> 
key="title 1"><! [CDATA[Low] ]></INFO> 
key="title 2"><! [CDATA [Minor] ]></INFO> 
key="title 3"><! [CDATA [Medium] ] ></INFO> 
key="title 4"><! [CDATA[High] ]></INFO> 
key="title 5"><! [CDATA[Critical] ]></INFO> 
key="risk calculation"><! [CDATA[0]]></INFO> 

ESS RISK» 

S8 RISK MATRIX» 
key-"subscription id"»«! [CDATA[988978] ]></INFO> 
key="impact"><! [CDATA[1] ]></INFO> 
key="severity"><! [CDATA[1]]></INFO> 
key="value"><! [CDATA[0]]></INFO> 
key-"subscription id"><! [CDATA[988978] ]></INFO> 
key="impact"><! [CDATA[1] ]></INFO> 
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XINFO key="severity"><! [CDATA[2]]></INFO> 

<INFO key="value"><! [CDATA[0]]></INFO> 

<INFO key="subscription id"><! [CDATA[988978] ]></INFO> 
XINFO key="impact"><! [CDATA[1]]></INFO> 

XINFO key="severity"><! [CDATA[3]]></INFO> 

XINFO key="value"><! [CDATA[1] ]></INFO> 


</BUSINESS RISK MATRIX» 
</REPORTS> 
<REMEDIATION> 


key-"remedy.qualysguard can fix"><! [CDATA[1]]></INFO> 


key="remedy.scanners can _ignore"><! [CDATA[1]]></INFO> 


key="remedy.scanners can delete"><! [CDATA[1]]></INFO> 
</REMEDIATION> 


<USERS> 
<INFO 
<INFO 


key="password. 


<INFO 
<INFO 
<INFO 
<INFO 
<INFO 
<INFO 
<INFO 


[1] ]></INFO> 
<INFO 


<INFO 


<INFO 


NFO> 
<INFO 


] ></INFO> 
<INFO 


<INFO 
<INFO 
<INFO 


key-"saml.enable.new.users"»«![CDATA[1]]»«/INFO» 


expiration.enabled"><! [CDATA[1]]></INFO> 
key-"password.lock.enabled"»«! [CDATA[1] ]></INFO> 
key="password.custom.allowed"><! [CDATA[1] ]></INFO> 
key="password.check length"><! [CDATA[1]]></INFO> 
key="password.alphanum"><! [CDATA[1] ]></INFO> 
key="password. force reset"><! [CDATA[1] ]></INFO> 
key="password.expiration.time"><! [CDATA[2] ] »«/ INFO» 


key-"permission.restrict view user info on user datalist"»«![CDATA 


key="notify.password.expiry.flag"><! [CDATA[1]]></INFO> 


key="notify.password.expiry.email.flag"><! [CDATA[1]]></INFO> 


key="notify.password.expiry.email.periodic.days"><! [CDATA[15]]></I 


key="notify.password.expiry.email.periodic.frequency"><! [CDATA[15] 


key="notify.password.expiry.email.daily.days"><! [CDATA[2] ]></INFO> 
] 


key="Change.password.at.login"><! [CDATA[1] ]></INFO> 


key="vip.enforce"><! [CDATA[0] ]></INFO> 


key="show.modify external id perm"><! [CDATA[1]]></INFO> 
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XINFO key="password.lock.attempts"><! [CDATA[3] ]></INFO> 
<INFO key-"password.min length"><! [CDATA[7]]></INFO> 
<INFO key="restrict view user info"><! [CDATA[1]]></INFO> 
<INFO key="restrict view sched _task"><! [CDATA[1]]></INFO> 


<INFO 


key-"limit no of ips for unit manager"><! [CDATA[1]]></INFO> 


<INFO key="fo.login.secureip.flag"><! [CDATA[true] ] ></INFO> 


<INFO key="session.expiration"><! [CDATA[200] ]></INFO> 


<INFO 


<INFO 


<INFO 


<INFO 


key= 
<INFO 


<INFO 


</INFO> 

<INFO 
key=" 

<INFO 


—K" 


key- 


«INFO 


</INFO> 


<INFO key-2"qagent. 


key="session.expiration.custom flag"><! [CDATA[1] ]></INFO> 
key="session.expiration.auditor"><! [CDATA[13] ]></INFO> 


key="session.expiration.kb user"»«![CDATA[18]]»«/INFO» 


session.expiration.manager"><! [CDATA[11]]></INFO> 
key="session.expiration.reader"><! [CDATA[15] ]></INFO> 


key-"session.expiration.remediation user"><! [CDATA[16]]> 


session.expiration.scanner"><! [CDATA[14]]></INFO> 
session.expiration.unit manager"><! [CDATA[12] ]></INFO> 


key-"session.expiration.user administrator"»«![CDATA[17]]» 


nable.merging"><! [CDATA[1]]></INFO> 


«SUB IPV6 RESTRICT MAP» 
XINFO key="id"><! [CDATA[1020] ]></INFO> 
<INFO key="subscription id"><! [CDATA[988978] ]></INFO> 


<INFO 


key-"ip start"><! [CDATA[77884452878022414427957444938301440] ] »«/IN 


FO» 
«INFO 


key-"ip end"»«![CDATA[77884452878022414427957444938301440] ] »«/ INFO 


> 


«/SUB IPV6 R 


«SUBSCRI 
«INFO 
«INFO 
«INFO 
«INFO 
«INFO 
«INFO 
«INFO 


PTION IP R 


EST 


key-"subscrip 


Ws 


key-"ip range _ 


key-"subscrip 


key-"ip range 


key-"subscrip 


La 


key-"ip range 


key-"subscrip 


ESTRICT MAP» 


RICT MAP» 

tion id"»«! [CDATA[988978] ]></INFO> 
id"»«![CDATA[322590] ] »«/INFO» 
tion id"»«! [CDATA[988978] ]></INFO> 
id"»«![CDATA[670577]]»«/INFO» 
tion id"»«! [CDATA[988978] ]></INFO> 
id"»«![CDATA[671597]]»«/INFO» 
tion id"»«! [CDATA[988978] ]></INFO> 
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<INFO key="ip range id"><! [CDATA[671598]]></INFO> 

</SUBSCRIPTION IP RESTRICT MAP» 

<IP_RANGE> 
XINFO key="id"><! [CDATA[322590]]></INFO> 
<INFO key="ip_start"><! [CDATA[-1972256617]]></INFO> 
<INFO key-"ip end"»«! [CDATA[-1972256617] ]></INFO> 
XINFO key="id"><! [CDATA[670577] ]></INFO> 
<INFO key="ip_start"><! [CDATA[-1979055871] ]></INFO> 
<INFO key="ip_end"><! [CDATA[-1978990593] ] »«/ INFO» 
<INFO key="id"><! [CDATA[671597] ]></INFO> 
<INFO key="ip_start"><! [CDATA[-1972256617]]></INFO> 
<INFO key="ip_end"><! [CDATA[-1972256617] ]></INFO> 
XINFO key="id"><! [CDATA[671598] ]></INFO> 
<INFO key="ip_start"><! [CDATA[-1979055871] ]></INFO> 
<INFO key-"ip end"»«! [CDATA[-1978990593] ] »«/ INFO» 

«/IP RANGE» 

«/USERS» 
«/FO» 
«/SUBSCRIPTION» 
</RECORD> 


Subscription Info DTD 
The Subscription Information DTD (subscription_info.dtd) is shown below. 


<!ELEMENT RECORD (SUBSCRIPTION) *> 
<!ELEMENT SUBSCRIPTION (INFO| FO) *> 
<!ELEMENT INFO (#PCDATA) > 
<!ATTLIST INFO 
key CDATA #REQUIRED> 
<!ELEMENT FO (SCAN|REPORTS| REMEDIATION | USERS) *> 
<!ELEMENT SCAN 
(INFO|SCANNER TRUSTED CA|EXCLUDED IPS|EXCLUDED HISTORY|EXCLUDED IP 
S EXPIRATION)*» E i i B 
<!ELEMENT SCANNE 
<!ELEMENT EXCLUD 
<!ELEMENT EXCLUD 
<!ELEMENT EXCLUDE 
T 
I 


R TRUSTED CA (INFO) *> 
I (INFO) *> 
HISTORY (INFO) *> 
IPS EXPIRATION (INFO) *> 


=| 


<!ELEMEN E PORTS 
(INFO|BUSINESS R | BUSINESS RISK MATRIX) *> 
<!ELEME USINESS RISK (INFO) *> 
ESS RISK MATRIX (INFO) *> 
EMEDIATION (INFO) *> 
SERS 
STRICT MAP|SUBSCRIPTION IP RESTRICT MAP|IP RANG 


N 
<!ELEMEN 
<!ELEMEN 
N 
R 


GWDUWUWNWDW 
G 
[02 
H 
z 


<!ELEME 


E] EX = = PL | 


(INFO|SUB IPV6 
*» 


Fa 
— 


<! ELEME 


Z 
= 
ca 


UB IPV6 RESTRICT MAP (INFO) *> 
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<!E 
<!E 


EM 


ENT 


EM 


[ SUBSCRI 


ENT 
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PTION IP RI 


l IP RANGI 


E (INFO) *> 
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ESTRICT MAP 


(INFO) *> 
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Import Subscription Configurations 


Import subscription settings from an XML file to your account. Note that certain settings 
(INFO keys) will be ignored during import action. See Subscription INFO Keys. 


URL: https://<baseurl>/api/2.0/fo/subscription/index.php 
Methods allowed: POST 


Permissions: Manager Only 


Input parameters 
Use these parameters when making your request. 


action=import 


import_type={value} (Optional) By default we'll include setup configuration 
settings from all sections of the UI. Use this parameter 
to import settings from certain sections only. Possible 
values are: all (the default), scan, reports, rernediation, 
users. Multiple values are comma separated. 


Example 
Request: 


curl -u "username:password" -H "Content-type: text/xml" -X "POST" 
--data-binary @export config.xml 
"https://qualysapi.qualys.com/api/2.0/fo/subscription/?action-impo 
rt" > import config.xml 


Response: 


<?xml version="1.0" encoding="UTF-8" ?> 

<!DOCTYPE SIMPLE RETURN SYSTEM 
"https://qualysapi.qualys.com/api/2.0/simple return.dtd"> 
«SIMPLE RETURN» 

«RESPONSE» 
<DATETIME>2017-01-09T13:39:26Z</DATETIME> 
<TEXT>Successfully imported subscription prefs for 

subscription Id 78091</TEXT> 

</RESPONSE> 

</SIMPLE RETURN> 
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Subscription INFO Keys 
RECORD > SUBSCRIPTION > FO > SCAN 


INFO Key 


Description 


global_storage={null|1} 


A value of 1 indicates that a global storage setting is 
applied to all users (replaces individual users' storage 
settings). This setting appears under Scans » Setup » 
Storage. 


agnt.track.accept={0|1|2} 


Indicates whether Agentless Tracking has been 
accepted for the subscription. Possible values: 0 (Not 
Accepted), 1 (Accepted), 2 (Cleanup). 


scheduling.prevent.overlap 
ping.scans={0|1} 


A value of 1 indicates that the “Do not allow 
overlapping scans” option is selected in Scheduled 
Scans Setup to prevent overlapping scans. A value of 0 
means this option is not selected. 


scheduling.relaunch.finishe 
d.scans={0|1} 


A value of 1 indicates that the “Relaunch Scan on 
Finish” option is selected in Scheduled Scans Setup. A 
value of 0 means this option is not selected. 


RECORD > SUBSCRIPTION > FO > SCAN > SCANNER_TRUSTED_CA 


INFO Key 
id={value} 


Description 

The certificate ID. 

This key is ignored for import action. The value is set 
based on the subscription of the user making the API 
request. 


subscription_id={value} 


The subscription ID. 
This key is ignored for import action. The value is set 
based on the subscription of the user making the API 
request. 


cert={value} 


The name of the trusted certificate authority. 


common_name={value} 


The name of the certificate. 


valid_from={value} 


The first date the certificate is considered valid. 


(D 


valid to-(value] 


ast date the certificate is considered valid. 


i 
> 
(D 


md5={value} 


The MD5 fingerprint used by the scanner for SSL 
verification. 


shai=({value} 


The SHA1 fingerprint used by the scanner for SSL 
verification. 


cert_data={value} 


The content of the certificate file. 
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RECORD > SUBSCRIPTION > FO > SCAN > EXCLUDED_IPS 


INFO Key 


Description 


id={value} 


An auto-generated ID for the excluded hosts list. 

This key is ignored for import action. The value is set 
based on the subscription of the user making the API 
request. 


subscription_id={value} 


The subscription ID. 
This key is ignored for import action. The value is set 
based on the subscription of the user making the API 
request. 


excluded_history_id= 
{value} 


An auto-generated ID for the excluded hosts history. 
This key is ignored for import action. The value is set 
based on the subscription of the user making the API 
request. 


ip_start={value} 


The first IP in the range of IPs to be excluded. 


ip_end={value} 


The last IP in the range of IPs to be excluded. 


network_id={value} 


[he network ID. 


RECORD > SUBSCRIPTION > FO > SCAN > EXCLUDED_IPS_EXPIRATION 


INFO Key 


Description 


id={value} 


An auto-generated ID for the expiration settings. 
This key is ignored for import action. The value is set 
based on the subscription of the user making the API 
request. 


subscription_id={value} 


The subscription ID. 
This key is ignored for import action. The value is set 
based on the subscription of the user making the API 
request. 


network_id={value} 


The network ID. 


expiration date-(value) 


The expiration date for the set of excluded IPs. The 
date is determined by the deadline set at the time the 
IPs were added to the list. 


ip start-[value] 


The first IP in the range of IPs to be excluded. 


ip end-([value] 


The last IP in the range of IPs to be excluded. 


notification sent-(0|1] 


A value of 1 indicates that a notification will be sent 7 
days before IPs are removed from the list, and 0 
indicates that a notification will not be sent 


created by-(value] 


The user who added IPs to the excluded IPs list with an 
expiration date set. 


created, on-([value] 


The date/time IPs were added to the excluded IPs list 
with an expiration date set. 


notify dg-(value] 


The ID of a distribution group that will be sent the 
notification email. 
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RECORD > SUBSCRIPTION > FO > SCAN > EXCLUDED_HISTORY 


INFO Key Description 


id={value} An auto-generated ID for the history settings. 
This key is ignored for import action. The value is set 

y 1S 1g p 
based on the subscription of the user making the API 


request. 


subscription id-(value] The subscription ID. 
This key is ignored for import action. The value is set 
based on the subscription of the user making the API 


request. 


user id-([value) The user ID for the user who made a change to the 
Excluded Hosts list. 


This key is ignored for import action. We'll set this 

value to the user ID of the user making the API request. 
action={add|remove} The action that was taken - add or remove IPs. 
comments={value} User-provided comments at the time of the action. 
params=({value} The IP addresses included in the action. 
network_id={value} The network ID. 


RECORD > SUBSCRIPTION > FO > REPORTS 


INFO Key Description 


cpe.support={null|1} A value of 1 indicates that the OS CPE feature has been 


enabled under Reports > Setup > OS CPE. 


secrisk.ignore_O_risk_hosts A value of 1 indicates that the Security Risk option “Do 

={null|1} not include hosts with zero risk in calculation” is 
enabled. This setting appears under Reports > Setup > 
Security Risk. 


scheduled.reporting.emaila A value of 1 indicates that a report less than 1 MB will 

ttachments=({0|1} be sent as an attachment to the scheduled report email 
notification. Distribution options appear under Reports 
> Setup > Scheduled Reports. 


scheduled.reporting.emaill A value of 1 indicates that a report link will be included 

inks-(0|1] in the scheduled report email notification. Distribution 
options appear under Reports » Setup » Scheduled 
Reports. 
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RECORD > SUBSCRIPTION > FO > REPORTS > BUSINESS_RISK 


INFO Key 


Description 


subscription_id={value} 


The subscription ID. 
This key is ignored for import action. The value is set 
based on the subscription of the user making the API 


request. 


tit 


e 1- 


value 


The business impact title in the first column of the 
Business Risk lookup table under Reports » Setup » 
Business Risk. 


üt 


e 2- 


Vaiue 


The business impact title in the second column of the 
usiness Risk lookup table under Reports » Setup » 
usiness Risk. 


üt 


e 3- 


value 


The business impact title in the third column of the 


usiness Risk lookup table under Reports > Setup > 
usiness Risk. 


tit 


e 4= 


value 


i 
D> 
(D 


business impact title in the fourth column of the 
usiness Risk lookup table under Reports » Setup » 
usiness Risk. 


üt 


e 5- 


value 


The business impact title in the fifth column of the 
Business Risk lookup table under Reports » Setup » 
Business Risk. 


risk calculation-(0]|1] 


The method used for calculating security risk in 
reports. A value of 0 indicates that the average severity 
level detected will be used. A value of 1 indicates that 
the highest severity level detected will be used. This 
setting appears under Reports » Setup » Security Risk. 


RECORD > SUBSCRIPTION > FO > REPORTS > BUSINESS, RISK MATRIX 


INFO Key 


Description 


subscription id-(value] 


The subscription ID. 
This key is ignored for import action. The value is set 
based on the subscription of the user making the API 
request. 


impact={value} 


The business impact (1-5). 


severity-[value] 


The security risk (1-5). 


value={value} 


The business risk value (0-100). 
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RECORD > SUBSCRIPTION > FO > REMEDIATION 


INFO Key 


Description 


remedy.qualysguard_can_fi 
x-[null|1] 


A value of 1 indicates that the setting "Allow the 
service to mark Open tickets as Closed/Fixed” is 
enabled. Ticket transition settings appear under 
Remediation » Setup. 


remedy.scanners can ignor 
e={null|1} 


A value of 1 indicates that the setting “Allow Scanners 
and Readers to mark tickets as Closed/Ignored” is 
enabled. Ticket transition settings appear under 
Remediation > Setup. 


remedy.scanners_can_delet 
e={null|1} 


A value of 1 indicates that the setting “Allow Scanners 
and Readers to delete tickets” is enabled. Ticket 
transition settings appear under Remediation > Setup. 


RECORD > SUBSCRIPTION > FO > USERS 


INFO Key 


Description 


saml.enable.new.users=({0|1} 


A value of 1 indicates that SAML SSO is enabled at the 
subscription level, and 0 indicates that it’s not enabled. 


password.expiration.enable 
d={0|1} 


A value of 1 indicates that the “Password expires after 
N months" setting is enabled, and 0 indicates that it's 
not enabled. 


password.lock.enabled 
={0|1} 


A value of 1 indicates that the “Lock account after N 
failed login attempts” setting is enabled, and 0 
indicates that it’s not enabled. 


password.custom.allowed 
=(0|1} 


A value of 1 indicates that the “Allow user defined 
passwords” setting is enabled, and 0 indicates that it’s 
not enabled. 


password.check_length 
=(0|1} 


A value of 1 indicates that a minimum password length 
is enforced, and 0 indicates that it’s not enforced. 


password.alphanum={0|1} 


A value of 1 indicates that users’ passwords must 
contain alpha and numeric characters, and 0 indicates 
that this requirement is not set. 


password.force_reset={0|1} 


A value of 1 indicates that users must change their 
password at initial login, and 0 indicates that this 
requirement is not set. 


password.expiration.time 
-[value] 


The number of months (1-12) allowed before the 
password expires when the "Password expires after N 
months" setting is enabled. 


permission restrict view us 
er info on user datalist 
=(0|1} 


A value of 1 indicates that the “Hide users outside the 
business unit from user lists” setting is enabled, and 0 
indicates that it’s not enabled. 


notify.password.expiry.flag 
=(0|1} 


A value of 1 indicates that users will be notified in the 
UI to change their password before it expires, and 0 
indicates that they won't be notified. 
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Description 


notify.password.expiry. 


emai 


flag 


A value of 1 indicates that users will be notified by 
email to change their password before it expires. 


notify.password.expiry. 


emai 


.periodic.days 


'he number of days (1-90) before a user's password is 
set to expire when the system will send the first 
password expiration email to the user. 


notify.passw 


emal 


ord.expiry. 
.periodic.frequency 


The frequency in which the password expiration email 
will be sent to the user in days (1-90). For example, 
every 2 days, every 5 days, etc. 


notify.passw 


email.daily.days 


ord.expiry. 


The number of days (0-30) before a user's password is 
set to expire when the system will start sending daily 
password expiration emails to the user. 


change.password.at.login 


={0|1} 


A value of 1 indicates that users are allowed to change 
their expired password at login, and 0 indicates that 
they aren't. 


vip.enforce-(0|1) 


A value of 1 indicates that all users are required to log 
into the Qualys GUI using VIP two-factor 
authentication, and 0 indicates that VIP two-factor 
authentication is not required. 


show.modify external id p 


erm={0|1} 


A value of 1 indicates that other users (besides the 
Manager Primary Contact) are allowed to manage 
external IDs, and 0 indicates that only the Manager 
Primary Contact has this permission. 


password.lock.attempts 


={value} 


Number of login attempts allowed (3-10) before the 
user’s account will be locked. 


password.min_length 


-[value] 


The minimum number of characters required (6-16) for 
a user-defined password. 


restrict view. user info 


={0|1} 


A value of 1 indicates that the “Restrict view of user 
information for users outside of business unit” setting 
is enabled, and 0 indicates that it’s not enabled. 


restrict_view_sched_task 


=(0)1} 


A value of 1 indicates that the “Restrict view of 
scheduled tasks on unassigned assets” setting is 
enabled, and 0 indicates that it’s not enabled. 


limit_no_of_ips_for_unit_m 


anager-(0]|1) 


A value of 1 indicates that the "Enable limiting the 
number of new IPs that Unit Managers/allowed user 
can add" setting is enabled, and 0 indicates that it's not 
enabled. 


fo.login.secureip.flag 


-[null[true] 


A value of true indicates that access to the service is 
restricted to a set of IPs defined under Users » Setup » 
Security » Restricted Access. When set to true for 
import action, be sure there is at least one IP included 
in the IP range for SUBSCRIPTION IP. RESTRICT MAP 
or SUB IPV6 RESTRICT MAP. 


session.expiration={value} 


The session timeout in minutes (5-240) specified under 
Users > Setup > Security. 
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Description 


session.expiration.custom. 
flag 


A value of 1 indicates that the option to define session 
timeout by user role is enabled. 0 indicates that this 
option is not enabled. 


session.expiration.manager 
-[value] 


The session timeout in minutes (10-240) for Managers. 


session.expiration. The session timeout in minutes (10-240) for Unit 
unit manager-([value] Managers. 

session.expiration.auditor-( The session timeout in minutes (10-240) for Auditors. 
value] 

session.expiration.scanner= The session timeout in minutes (10-240) for Scanners. 


[value] 


session.expiration.reader={ 
value} 


The session timeout in minutes (10-240) for Readers. 


session.expiration. 
remediation_user={value} 


The session timeout in minutes (10-240 
Remediation Users. 


or 


session.expiration. 
user_admistrator={value} 


The session timeout in minutes (10-240) for User 
Administrators. 


session.expiration.kb_user= 
{value} 


The session timeout in minutes (10-240 
KnowledgeBase Only users. 


or 


qagent.enable.merging 
-[value] 


» 


A value of 1 indicates the "Show unified views of hosts 
option is selected in Cloud Agent Setup under Users 
Setup. 
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RECORD > SUBSCRIPTION > FO > USERS > SUB_IPV6_RESTRICT_MAP 


INFO Key Description 
The subscription ID. 
This key is ignored for import action. The value is set 
based on the subscription of the user making the API 
request. 


subscription_id={value} 


ip range id-([value] An auto-generated ID for the IP range. 
This key is ignored for import action. The value is set 
based on the subscription of the user making the API 
request. 


RECORD > SUBSCRIPTION > FO > USERS > SUBSCRIPTION IP RESTRICT. MAP 


INFO Key Description 
The subscription ID. 
This key is ignored for import action. The value is set 
based on the subscription of the user making the API 
request. 


subscription id-[value] 


ip range id-(value] An auto-generated ID for the IP range. 
This key is ignored for import action. The value is set 
based on the subscription of the user making the API 
request. 


RECORD > SUBSCRIPTION > FO > USERS > IP. RANGE 


INFO Key Description 

id={value} An auto-generated ID for the IP range. 

This key is ignored for import action. The value is set 
based on the subscription of the user making the API 
request. 


ip_start={value} The first IP address in the range of IPs allowed to 
connect to the subscription (under Users > Setup > 
Security > Restricted Access). 


ip_end={value} The last IP address in the range of IPs allowed to 
connect to the subscription (under Users > Setup > 
Security > Restricted Access). 
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User Preferences 


Use these API functions to export/import user preferences for users in your subscription. 
Export User Preferences 
Import User Preferences 


User Preferences INFO Keys 


Export User Preferences 


Export user preferences for a particular user account. You'll need to specify the user ID as 
part of the API request. 


URL: https://<baseurl>/api/2.0/fo/user_prefs/index.php 
Methods allowed: GET 


Permissions: Manager Only 


Input parameters 
Use these parameters when making your request. 


action-export 


user id-[value] The ID for the user account you want to export. 


Example 
Request: 


curl -u "username:password" -H "X-Requested-With:curl" 
"https://qualysapi.qualys.com/api/2.0/fo/user prefs/?action-export 
&user id-1020428" » export user prefs.xml 


Response 


<?xml version="1.0" encoding="UTF-8" ?> 
<!DOCTYPE RECORD SYSTEM 
"https://qualysapi.qualys.com/api/2.0/user prefs/user pref.dtd"> 
<RECORD> 
<USER> 
<INFO key="user_ id"><! [CDATA[1020428] ]></INFO> 
<INFO key="username"><! [CDATA[qualys ps64]]></INFO> 
<INFO key="subscription id"><! [CDATA[991205] ]></INFO> 
<INFO key="firstname"><! [CDATA[Patrick] ]></INFO> 
<INFO key="lastname"><! [CDATA[Slimmer] ]></INFO> 
<INFO key="prefix"><! [CDATA[Mr] ]></INFO> 
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<INFO key="title"><! [CDATA[IT Manager] ]></INFO> 
<INFO key="company"><! [CDATA[Qualys, Inc.]]></INFO> 
<INFO key="addri"><![CDATA[1600 Bridge Pkwy] ]></INFO> 
XINFO key="city"><! [CDATA[Redwood City] ]></INFO> 
<INFO key="zipcode"><! [CDATA[94065] ]></INFO> 
XINFO key="state"><! [CDATA[California] ]></INFO> 
<INFO key="country"><! [CDATA[United States of 
America] ]></INFO> 
<INFO key="phone"><! [CDATA[6508016100] ]></INFO> 
XINFO key="fax"><! [CDATA[6508016101] ] »«/ INFO» 
XINFO key="email"><! [CDATA[pslimmer@qualys.com] ]></INFO> 
<INFO key="user_ status"><! [CDATA[4]]></INFO> 
<INFO key="created_by"><! [CDATA[qualys yn52]]></INFO> 
XINFO key="creation date"><! [CDATA[2017-03-02 
19:23:15] ]></INFO> i 
<INFO key-"updated by"»«![CDATA[qualys yn52]]»«/INFO-» 
<INFO key-"update date"»«![CDATA[2017-03-02 19:53:58]]»«/INFO» 
<INFO key="user_ role"»«! [CDATA[50]]></INFO> 
XINFO key="notification"><! [CDATA[26201] ]></INFO> 
<INFO key="scan_ complete notification"><! [CDATA[on] ]></INFO> 
<INFO key="scan_notification"><! [CDATA[on]]></INFO> 
<INFO key="map_notification"><! [CDATA[on] ]></INFO> 
<INFO key="latest vulnerabilities"><! [CDATA[weekly] ]></INFO> 
<INFO key="daily ticket"><! [CDATA[1] ]></INFO> 
<INFO key="latest_controls"><! [CDATA[monthly] ]></INFO> 
<INFO 
key="exception notification"»«![CDATA[my exceptions] ]></INFO> 
<INFO key="report notification"><! [CDATA[all_ reports] ]></INFO> 
<INFO key="vuln_lang"><! [CDATA[en] ] ></INFO> 
<INFO 
key="user assigned report quota"><! [CDATA[209715200] ] »«/INFO» 
XINFO key-"last login date"»«![CDATA[2017-03-02 
19:53:50] ]»«/INFO» 
XINFO key="uuid"><! [CDATA[8e93b65f-798b-d086-817d- 
0d8721cc7d96] ] ></INFO> 
<INFO key="business_ unit"><! [CDATA[Unassigned] ]></INFO> 
<FO> 
<SCAN> 
<INFO 
key="storage.auto delete time scan"><! [CDATA[12] ]></INFO> 


«I 
key-"stora 
«I 
key-"stora 
«I 


key-"stora 


NFO 
ge.auto delete time map"><! [CDATA[12]]></INFO> 
NFO 
ge.auto delete time scan"»«![CDATA[12]]»«/INFO» 
NFO 
ge.auto delete time map"><! [CDATA[12]]></INFO> 
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</SCAN> 
<REPORTS> 
<INFO 
key-"ui.mapreport launcher.last selected report format"><! [CDATA[8 
0] ]></INFO> 7 z B = 
<INFO 
key-"ui.remedy report.last selected report format"><! [CDATA[10]]>< 
/ INFO> 7 7 7 E 
«INFO 
key-"ui.create asr report 2.last selected report format"><! [CDATA[ 
80]]></INFO> B 7 B 7 
XINFO key-"ui.create scorecard - 
l.last selected report format"><! [CDATA[80]]></INFO> 
«INFO 
key-"ui.create scan report.last selected report format"><! [CDATA[8 
0]]»«/INFO» B 7 B B 
«/REPORTS» 
<REMEDIATION> 
<INFO 
key="fo.remedyticket.timeframe selection"><! [CDATA[90]]></INFO> 
</REMEDIATION> 
<USERS> 
<INFO 
key="password.change time"><! [CDATA[1488482619] ] ></INFO> 
<INFO 
key="fo.activitylog.timeframe selection"><! [CDATA[30] ]></INFO> 


<INF 
<INF 
<INF 
key="fo.secu 
<INF 
key="fo.secu 
<INF 
key="fo.secu 
<INF 
key="fo.secu 
<INF 
key="fo.secu 
«INFE 
key-"fo.secu 
«INFE 
key-"fo.land 
«INFE 


<INF 
<INF 
1] ]></INFO> 


toc"><! [CDATA 


O key="fo.can.access.gui"><![CDATA[1]]></INFO> 
O key="api.can.access.api"><![CDATA[1]]></INFO> 
O 
rity.questions.one"><! [CDATA[1dE=] ]></INFO> 
O 
rity.questions.two"><! [CDATA[1dI=] ]></INFO> 
O 
rity.questions.three"»«! [CDATA[1dM=] ]></INFO> 
O 
rity.questions.answer.one"><! [CDATA[5Q==] ]></INFO> 
O 
rity.questions.answer.two"><! [CDATA[5g==] ]></INFO> 
O 
rity.questions.answer.three"><! [CDATA[5w--]]»«/INFO» 
O 
ing.is kb"»«![CDATA[fo.landing.is dashboard] ]></INFO> 
O key="secmanage.katana.accepted- 

true] ]></INFO> 

O key="fo.user.dateformat"><! [CDATA [mdy] ] »«/ INFO» 

O key="fo.manage.virtual.scanner"><! [CDATA[- 


— 
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XINFO key="fo.can.access.vm"><! [CDATA[1] ]></INFO> 
<INFO 
key="fo.exception.notification days defore"><! [CDATA[01]]></INFO> 
XINFO key="fo.can.access.compliance"><! [CDATA[1]]></INFO> 
</USERS> 
</FO> 
</USER> 
</RECORD> 
<!-- CONFIDENTIAL AND PROPRIETARY INFORMATION. Qualys provides the 
QualysGuard Service "As Is," without any warranty of any kind. 
Qualys makes no warranty that the information contained in this 
report is complete or error-free. Copyright 2017, Qualys, Inc. //- 
-> 


User Preferences DTD 
The User Preferences DTD (user_pref.dtd) is shown below. 


<!ELEMENT RECORD (USER) *> 
<!ELEMENT USER (INFO| FO) *> 
<!ELEMENT INFO (#PCDATA) > 
<!ATTLIST INFO 

key CDATA #REQUIRED> 

<!ELEMENT FO (SCAN|REPORTS |REMEDIATION|USERS) *> 

<!ELEMENT SCAN (INFO) *> 

<!ELEMENT REPORTS (INFO) *> 

<!ELEMENT REMEDIATION (INFO) *> 

<!ELEMENT USERS (INFO) *> 


Gl 


T 


I 
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Import User Preferences 


Import user preferences from an XML file to your subscription. We'll import the user 
preferences to the subscription belonging to the user making the API request. Note that 
certain user preferences (INFO keys) will be ignored during import action. See User 
Preferences INFO Keys. 


URL: https://<baseurl>/api/2.0/fo/user_prefs/index.php 
Methods allowed: POST 


Permissions: Manager Only 


Input parameters 
Use these parameters when making your request. 


action=import 


user_id={value} (Optional) When user id is specified, we'll update the 
user account with the user preferences in the XML file. 
When user. id is not specified, we'll create a new user 
account in your subscription with the user 
preferences. 


Examples 


Sample 1 - In this example, we're updating the user account with user ID 1022024 with the 
user preferences from the XML file. 


Request (update user): 


curl -u "username:password" -H "Content-type: text/xml" -X "POST" 
--data-binary Gexport user prefs.xml 
"https://qualysapi.qualys.com/api/2.0/fo/user prefs/?action-import 
&user id-1022024" » import user prefs.xml 


Response 


<?xml version="1.0" encoding="UTF-8" ?> 

<!DOCTYPE SIMPLE RETURN SYSTEM 
"https://qualysapi.qualys.com/api/2.0/simple return.dtd"> 
«SIMPLE RETURN» 

«RESPONSE» 
<DATETIME>2017-03-07T00:46:04Z</DATETIME> 
<TEXT>Successfully imported user prefs</TEXT> 
«ITEM LIST» 

«ITEM» 
<KEY>login</KEY> 
X«VALUE»qualys ps84«/VALU 
</ITEM> 


加 
V 


«KEY»user id«/KEY» 
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<VALUE>1022024</VALUE 
</ITEM> 
«/ITEM LIST» 
</RESPONSE> 
</SIMPLE RETURN> 


V 


Sample 2 - In this example, we're creating a new user account with the user preferences 
from the XML file. The user ID in the output is for the newly created user account. 


Request (create user): 


curl -u "username:password" -H "Content-type: text/xml" -X "POST" 
--data-binary Gexport user prefs.xml 


"https://qualysapi.qualys.com/api/2.0/fo/user prefs/?action-import 
" » import user prefs.xml 


Response 


<?xml version="1.0" encoding="UTF-8" ?> 

<!DOCTYPE SIMPLE RETURN SYSTEM 

"https://qualysapi.qualys.com/api/2.0/simple return.dtd"» 

«SIMPLE RETURN» 

«RESPONSE» 
<DATETIME>2017-03-07T00:42:12Z</DATETIME> 


<TEXT>Successfully imported user prefs</TEXT> 
«ITEM LIST» 

«ITE 
<KEY>login</KEY> 


<VALUE>qualys ps86</VALU 


加 
V 


«KEY»user id«/KEY» 
<VALUE>1022026</VALU 


加 
V 


«/ITEM LIST» 
</RESPONSE> 
«/SIMPLE RETURN» 
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User Preferences INFO Keys 
RECORD > USER > INFO 


INFO Key Description 

user_id={value} The unique ID for the user’s account. 

username={value} The Qualys user login ID for the user’s account. 

subscription_id={value} The subscription ID. 

firstname=({value} The user’s first name (max 50 characters). 

lastname={value} The user’s last name (max 50 characters). 

prefix={value} The user’s prefix (Mr, Ms, Mrs). 

title={value} The user’s job title (max 100 characters). 

company={value} The user’s company name. 

addri={value} The user’s address line 1 (max 80 characters). 

city-[value] The user's city (max 50 characters). 

zipcode={value} The zip code of the user’s address (max 20 characters). 

state-(value) The user's state code. A valid value depends on the 
country code. See State Codes. 

country={value} The user’s country code. See Country Codes. 

phone={value} The user’s phone number (max 40 characters). 

email={value} The user’s email address. The address must be a 
properly formatted address with a maximum of 100 
characters. 

user_status={value} The user’s current status. Possible values: 0 (Activation 
pending), 4 (Active), 16 (Deleted), 37 (Inactive). 

created_by={value} The user login ID for the manager who created the 
account. 

creation_date={value} The date the user account was created. 

updated_by={value} The user login ID for the manager who last updated the 
account. 

update_date={value} The date the user account was last updated. 

user_role={value} The user’s assigned role. Possible values: 


7 (Auditor), 14 (Contact), 50 (Manager), 70 (Reader), 74 
(Scanner), 83 (Unit Manager), 90 (KnowledgeBase Only), 
95 (Remediation User). 


notification-[value] Indicates a combined notification string for all the 
notifications that are enabled and disabled. 


scan complete notification 
-[value] 


'he Scan Complete Notification setting: On or Off. 


scan, notification-[value) The Scan Summary Notification setting: On or Off. 


map_notification={value} The Map Notification setting: On or Off. 


31 


INFO Key 


User Preferences 
User Preferences INFO Keys 


Description 


latest_vulnerabilities 
={value} 


The Latest Vulnerabilities notification setting: Weekly, 
Daily or None. 


daily_ticket={0|1 


A value of 1 indicates that the Daily Trouble Ticket 
notification is enabled for the user, and a value of 0 
indicates that it’s not. 


latest_controls={value} 


The Latest Controls notification setting: Monthly, 
Weekly or None. 


exception_notification 
={value} 


The Exception Notification setting: My exceptions or 
No notifications. 


report_notification={value} 


The Report Notification setting: My Reports or No 
Notifications 


vuln_lang={value} 


The user’s language setting: en (English) or ja 
(Japanese). 


user assigned report quot 
a-[value] 


The Report Share limit for this user. 


last login date-[value] 


The date/time when this user last logged in. 
This key is ignored for import action. 


uuid={value} 


The UUID assigned to this user. 


This key is ignored for import action. 


business_unit={value} 


The user’s business unit. 


RECORD > USER > FO > SCAN 


INFO Key 


Description 


storage.auto_delete_time_s 
can-(value] 


Indicates how long scan results will remain in the 
account before being auto deleted (1-13 months). A 
value of 0 indicates scan results will not be auto 
deleted. 


storage.auto delete time 
map={value} 


Indicates how long map results will remain in the 
account before being auto deleted (1-13 months). A 
value of 0 indicates map results will not be auto 
deleted. 
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RECORD > USER > FO > REPORTS 


INFO Key 


Description 


ui.mapreport_launcher.last 
_selected_report_format 
={value} 


The last selected report format by the user for Map 
Report. Possible values: 10 (CSV), 30 (HTML), 35 (Zip), 60 
MHT), 70 (PDF), 80 (XML). 


uiremedy report.last selec 
ted report. format-[value] 


The last selected report format by the user for 
Remediation Report. Possible values: 10 (CSV), 30 
TML), 35 (Zip), 60 (MHT), 70 (PDF), 80 (XML). 


ui.dl rpt remedy. 41.last se 
lected report format 
-[value] 


The last selected report format by the user for Daily 
Remediation Report. Possible values: 10 (CSV), 30 
TML), 35 (Zip), 60 (MHT), 70 (PDF), 80 (XML). 


ui.create asr report 2.last 
selected report format 
-[value] 


The last selected report format by the user for Asset 
Search Report. Possible values: 10 (CSV), 30 (HTML), 35 
Zip), 60 (MHT), 70 (PDF), 80 (XML). 


ul.create_scorecard_- 
1.last_selected_report_form 
t={value} 


e 


The last selected report format by the user for 
Scorecard Report. Possible values: 10 (CSV), 30 (HTML), 
35 (Zip), 60 (MHT), 70 (PDF), 80 (XML). 


ui.create scan report.last s 
elected report. format 
={value} 


The last selected report format by the user for Scan 
Report. Possible values: 10 (CSV), 30 (HTML), 35 (Zip), 60 
(MHT), 70 (PDF), 80 (XML). 


RECORD > USER > FO > REMEDIATION 


INFO Key 


Description 


fo.remedyticket.timeframe_ 
selection={value} 


Timeframe to use when displaying remediation tickets: 
30 days, 90 days, 180 days or Unlimited (-1). 


RECORD > USER > FO > USERS 


INFO Key 


Description 


password.change_time 
={value} 


Indicates the last time the user’s password changed. 


This key is ignored for import action. 


fo.activitylog.timeframe_sel 
ection={value} 


'imeframe to use when displaying the Activity Log in 
days: 7, 30, 90 or 180. 


fo.user.timezone={value} 


The user’s timezone. For example: AU-NSW for 
Australia New South West, IN for India, US-CA for USA- 
California. 


fo.can.access.gui={0|1} 


A value of 1 indicates the user can access the GUI, and 
0 means the user does not have this permission. 


api.can.access.api-(0|1] 


A value of 1 indicates the user can access the API, and 
0 means the user does not have this permission. 


fo.saml.enabled={0|1} 


A value of 1 indicates that SAML SSO is enabled for this 
user account, and 0 means it is not. 


fo.security.questions.one 
={value} 


Encoded value for the first secret question selected in 
the user profile. 
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INFO Key Description 
fo.security.questions.two Encoded value for the second secret question selected 
={value} in the user profile. 
fo.security.questions.three Encoded value for the third secret question selected in 
={value} the user profile. 
fo.security.questions.answe Encoded value for the answer to the first secret 
rone={value} question. 
fo.security.questions.answe Encoded value for the answer to the second secret 
r.two={value} question. 
fo.security.questions.answe Encoded value for the answer to the third secret 
r.three={value} question. 
fo.landing.is_kb={value The user-selected Home Page. Possible values: 
fo.landing.is_dashboard (Dashboard) 
fo.landing.is_map (Map) 
fo.landing.is_kb (KnowledgeBase) 
fo.landing.is_scan (Scan) 
fo.landing.is_schedule (Schedule) 
fo.landing.is_remedy (Remediation), 
fo.landing.is_report_center (Report) 
fo.landing.is_report (Report Templates) 
fo.landing.is_comp_dashboard (Compliance 
Dashboard) 
fo.landing.is_comp_policy (Compliance Policies) 
fo.landing.is_exception (Compliance Exceptions) 
guide.pages.hide={null|1} A value of 1 indicates that the user selected the “Do not 


show tutorials” option in the Qualys UI. 


ui.pwd, reset-(0|1) 


A value o 
no password re 
This 


set. 


key is ignored for import action. 


f 1 indicates a password reset, and 0 indicates 


secmanage.katana.accepte 


d-toc={0|1} 


A value o 


f 1indicates that the New 1 


Data Security 


Model is accepted for the subscription, and a value of 0 
indicates that it is not accepted. 


fo.user.dateformat={value} 


The 


or ydm (Year Day Month). 


user-selected date format: mdy (Month Day Year) 


fo.can.access.vm={0|1} 


Ava 


ue of 1 indica 


tes 


permission is enabled, 


and 0 means i 


the “Manage VM module” 


ts disabled. 


fo.can.add.virtual_host A value of 1 indicates the “Create/edit virtual hosts” 

=(0|1} permission is enabled, and 0 means it’s disabled. 

fo.can.edit.remedy.policy A value of 1 indicates the “Create/edit remediation 

=(0|1} policy” permission is enabled, and 0 means it’s 
disabled. 

fo.can.add.asset={0|1} A value of 1 indicates the “Add assets” permission is 


enabled, and 0 


means 


it’s disabled. 


fo.can.create.option_profile 


-(ort) 


A val 


ue of 1 indicates the "Create option profiles" 


permission is enabled, and 0 means it's disabled. 


34 


User Preferences 


User Preferenc 


INFO Key Description 

fo.can.purge.host={0|1} A value of 1 indicates the “Purge host 
information/history” permission is enabled, and 0 
means it’s disabled. 

fo.can.edit ntauth={0|1} A value of 1 indicates the "Create/edit authentication 
records/vaults" permission is enabled, and 0 means it's 
disabled. 

fo.can.approve.exceptions A value of 1 indicates the "Accept/Reject exceptions” 

=(0|1} permission is enabled, and 0 means it’s disabled. 

fo.can.access.compliance A value of 1 indicates the “Manage PC module” 

=(0|1} permission is enabled, and 0 means it’s disabled. 

fo.can.edit.compliance.poli A value of 1 indicates the “Create/edit compliance 

cy=(0|1} policies” permission is enabled, and 0 means it’s 
disabled. 

fo.can.manage.webapp A value of 1 indicates the “Manage web applications” 

=(0|1} permission is enabled, and 0 means it’s disabled. 

fo.can.create.webapp-[0|1] A value of 1 indicates the “Create web applications" 
permission is enabled, and 0 means it’s disabled. 

fo.manage.offüne.scanner A value of 1 indicates the “Manage offline scanner 

=(0|1} appliances” permission is enabled, and 0 means it’s 
disabled. 

fo.manage.virtualscanner A value of 1 indicates the “Manage virtual scanner 

=(0|1} appliances” permission is enabled, and 0 means it’s 
disabled. 

fo.can.editexternalid-(0|1] A value of 1 indicates that this user has the permission 


to manage external IDs. 


Country Codes 
Valid country codes: 


Afghanistan | Albania | Algeria | Andorra | Angola | Anguilla | Antartica 
Armenia | Aruba |Australia | Austria | Azerbaijan | Bahamas | Bahrain | Bangladesh | Barbados | Belarus | Be 
Belize | Benin | Bermuda | Bhutan | Bolivia | Bosnia-Herzegovina | 
Ocean Territory | Brunei Darussalam | Bulgaria | Burkina Faso | Burundi 
al African Republic | Chad 
Congo | Cook Islands | Cost: 
Dominica | Dominican 
inea | Estonia | Ethiopia | 
S 
Grenada | Guadeloupe 
| Heard and McDonald 
(Islamic Republic of) | Iraq | Ireland | Isle of Man 


Verde | Cayman Islands | Cent 
slands | Colombia | Comoros | 
Republic | Denmark | Djibouti 
Equatorial Gu 
French Guiana | French Polyne 
Gibraltar | Greece | Greenland 
Guyana | Haiti 


Kenya | Kiriba 
Libyan Arab 
Malaysia | Ma 


ti | Korea | Kuwait 


amahiriya | Liech 
dives | Mali | Malt 
Micronesia, Fed. States of | Moldova, Republic of 
Myanmar | Namibia | Nauru | Nepal | Netherland 
Caledonia | New Zealand | Nicaragua | Niger | Nig 


Faeroe Islands | 
a | French Southern Te 
slands | Hondur 


Kyrgyzstan | Lao Peop 
tenstein | Lithuania 
a | Marshall Islands 


Antil 


Israel | I 


Martinique 


Botswana | Bouvet Is 
Chile | China | Christmas Is 
a Rica | Cote D'Ivoire | Croat 
Republic | East Timor | Ecuador 
Falkland Islands (Malvinas) | Fi 
rritories| Gabon | Gambia | Geo 
Guatema 
as | Hong Kong | 
taly | Jamaica | Japan | Jersey 
Democratic Republi | Latvia 


es 


gia | Germany 


a | Guernsey, C.I. | Guinea | Guinea- 
Hungary | Iceland | India | Ind 
, CI. | Jordan | Kazakhstan | 
Lebanon | Lesotho | Liberia 
Luxembourg | Macau | Macedonia | Madagascar| 
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Mauritania | Mauriti 
Monaco | Mongolia | Montserrat | Morocco | Mozam 


us | Mexico | 


and | Brazil | British 
| Cambodia | Cameroon | Canada | 
land | Cocos (Keeling) 
ia | Cuba | Cyprus | Czech 
| Egypt | El Salvador 
ji | Finland | France | 


es INFO Keys 


Antigua and Barbuda | Argentina | 


gium | 
ndian 
Cape 


| Ghana | 
Bissau | 
onesia | Iran 


Malawi | 


bique | 


es | Netherlands | Neutral Zone (Saudi/Iraq) | New 

eria | Niue | Norfolk Island | Northern Mariana Islands | Norway | 
Oman | Pakistan | Palau | Panama Canal Zone | Panama | Papua New Guinea | Paraguay | Peru | Philippines | 
Pitcairn | Poland | Portugal | Puerto Rico | Qatar | Reunion | Romania | Russia | Rwanda | Saint Kitts and Nevis | 


User Preferences 
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Saint Lucia | Samoa | San Marino | Sao Tome and Principe | Saudi Arabia | Senegal | Seychelles | Sierra Leone | 
Singapore | Slovak Republic | Slovenia | Solomon Islands | Somalia | South Africa | Spain | Sri Lanka | St. Helena | 
St. Pierre and Miquelon | St. Vincent and the Grenadines | Sudan | Suriname | Svalbard and Jan Mayen Islands | 
Swaziland | Sweden | Switzerland | Syrian Arab Republic | Taiwan | Tajikistan | Tanzania, United Republic of | 
Thailand | Togo | Tokelau | Tonga | Trinidad and Tobago | Tunisia | Turkey | Turkmenistan | Turks and Caicos 
Islands | Tuvalu | U.S.Minor Outlying Islands | Uganda | Ukraine | United Arab Emirates | United Kingdom | 
United States of America | Uruguay | Uzbekistan | Vanuatu | Vatican City State | Venezuela | Vietnam | Virgin 
Islands (British) | Wallis and Futuna Islands | Western Sahara | Yemen | Yugoslavia | Zaire | Zambia | Zimbabwe 


State Codes 


State Codes for United States 
Value state codes when country is “United States of America”: 


Alabama | Alaska | Arizona | Arkansas | Armed Forces Asia | Armed Forces Europe | Armed Forces 

Pacific | California | Colorado | Connecticut | Delaware | District of Columbia |Florida | Georgia | Hawaii | Idaho | 
Illinois | Indiana | Iowa | Kansas | Kentucky | Louisiana | Maine | Maryland | Massachusetts | Michigan | Minnesota | 
Mississippi | Missouri | Montana | Nebraska | Nevada | New Hampshire | 

New Jersey| New Mexico | New York | North Carolina | North Dakota | Ohio | Oklahoma | Oregon | Pennsylvania | 
Rhode Island |South Carolina | South Dakota | Tennessee | Texas | Utah | Vermont | Virginia | Washington | West 
Virginia | Wisconsin | Wyoming 


State Codes for Australia 
Valid state codes when country is "Australia": 


No State | New South Wales | Northern Territory | Queensland | Tasmania | Victoria | Western Australia 


State Codes for Canada 
Valid state codes when country is “Canada”: 


No State | Alberta | British Columbia | Manitoba | New Brunswick | Newfoundland | Northwest Territories | Nova 
Scotia | Nunavut | Ontario | Prince Edward Island | Quebec | Saskatchewan | Yukon 


State Codes for India 
Valid state codes when country is "India": 


No State | Andhra Pradesh | Andaman and Nicobar Islands | Arunachal Pradesh | Assam | Bihar | Chandigarh | 
Chattisgarh | Dadra and Nagar Haveli | Daman and Diu | Delhi | Goa | Gujarat | Haryana | Himachal Pradesh | 
Jammu and Kashmir |Jharkhand | Karnataka | Kerala | Lakshadadweep | Madhya Pradesh | Maharashtra | Manipur 
| Meghalaya | Mizoram | Nagaland | Orissa | Pondicherry | Punjab [Rajasthan |Sikkim | Tamil Nadu | Tripura | 

Uttar Pradesh | Uttaranchal | West Bengal 
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